Although　distributed　systems　are　mostly　used　in　internal　environments,　they　are　also　inevitably　exposed　to　some　untrusted　environments　where　some　potential　security　problems　exist.　The　TLS　1.3[1],　a　new　network　security　standard,　was　officially　released　in　August　2018.　It　is　of　great　significance　for　the　authentication　and　secure　transmission　of　public　keys.　At　the　same　time,　it　can　be　used　as　a　reference　for　the　implementation　of　the　bi-directional　authentication　between　the　subsystems　in　distributed　systems.　Based　on　the　principle　and　thought　of　TLS1.3,　an　improvement　on　the　authentication　subsystem　is　proposed,　taking　Ceph,　a　distributed　storage　system,　as　an　example.　This　paper　designed　an　improved　solution　for　Ceph＇s　communication　in　an　insecure　environment.